Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2020-12803

Published: 8 June 2020

ODF documents can contain forms to be filled out by the user. Similar to HTML forms, the contained form data can be submitted to a URI, for example, to an external web server. To create submittable forms, ODF implements the XForms W3C standard, which allows data to be submitted without the need for macros or other active scripting Prior to version 6.4.4 LibreOffice allowed forms to be submitted to any URI, including file: URIs, enabling form submissions to overwrite local files. User-interaction is required to submit the form, but to avoid the possibility of malicious documents engineered to maximize the possibility of inadvertent user submission this feature has now been limited to http[s] URIs, removing the possibility to overwrite local files. This issue affects: The Document Foundation LibreOffice versions prior to 6.4.4.

Priority

Low

Cvss 3 Severity Score

6.5

Score breakdown

Status

Package Release Status
libreoffice
Launchpad, Ubuntu, Debian 		bionic
Released (1:6.0.7-0ubuntu0.18.04.12)
eoan Ignored
(end of life)
focal
Released (1:6.4.7-0ubuntu0.20.04.1)
groovy
Released (1:6.4.4-0ubuntu1)
hirsute
Released (1:6.4.4-0ubuntu1)
impish
Released (1:6.4.4-0ubuntu1)
jammy
Released (1:6.4.4-0ubuntu1)
kinetic
Released (1:6.4.4-0ubuntu1)
lunar
Released (1:6.4.4-0ubuntu1)
trusty Does not exist

upstream
Released (1:6.4.4-1)
xenial Ignored
(end of standard support, was needed)
Patches:
upstream: https://github.com/LibreOffice/core/commit/28520676c22be8308d303d503238af220d99c2bd
upstream: https://github.com/LibreOffice/core/commit/5d101a65c31e6c2f8dd0edffe05f69055cbd481c

Severity score breakdown

Parameter Value
Base score 6.5
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Scope Unchanged
Confidentiality None
Integrity impact High
Availability impact None
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading